Bugtraq mailing list archives
Re: Write-only devices (Was read only devices)
From: casper () holland Sun COM (Casper Dik)
Date: Thu, 27 Jun 1996 22:41:57 +0200
Here's a thought.....don't log it unless its a valid username. If its a valid username, and they're failing a lot, then you know what they're targetting...if its an invalid username, it doesnt' matter...could be a password, could be anything, but its not a valid user, so you don't need to worry about it.
I think you should log more than just valid usernames. In logging code
I wrote once I logged all usernames that had one of the following
characteristics:
- existing user
- only alpha numeric characters, starting with an alpha
While that may still log passwords, it only logs weak passwords.
Casper
Current thread:
- Re: Write-only devices (Was read only devices), (continued)
- Re: Write-only devices (Was read only devices) Paul C Leyland (Jun 24)
- Re: Write-only devices (Was read only devices) Peter Jeremy (Jun 24)
- Re: Write-only devices (Was read only devices) neill (Jun 24)
- Re: Write-only devices (Was read only devices) Adam Bauer (Jun 25)
- Re: Write-only devices (Was read only devices) Gary Howland (Jun 26)
- Re: Write-only devices (Was read only devices) J.R.Valverde (Jun 27)
- Re: Write-only devices (Was read only devices) Ken Weaverling (Jun 27)
- Re: Write-only devices (Was read only devices) Jonathan Lemon (Jun 27)
- Re: Write-only devices (Was read only devices) Roderick Murchison, Jr. (Jun 27)
- Re: Write-only devices (Was read only devices) Matthew Cable/USA.NET Inc. (Jun 27)
- Re: Write-only devices (Was read only devices) Casper Dik (Jun 27)
- Re: Write-only devices (Was read only devices) aleipold () clark net (Jun 27)
- Re: Write-only devices (Was read only devices) Robert Banz (Jun 28)
- Re: Write-only devices (Was read only devices) Ken Weaverling (Jun 27)
- Re: Write-only devices (Was read only devices) Valdis.Kletnieks () vt edu (Jun 28)